Android 4.4.2 KitKat fixes Class 0 SMS flaw on Nexus smartphones

With the upgrade to Android 4.4.2 KitKat, already available on the Nexus devices, resolves the vulnerability identified as Class 0 SMS.

In early December, the researcher Bogdan Alecu said that he had identified a serious vulnerability in the Nexus lineup, which allows to carry out a DoS (denial of service) by sending around 30 Flash SMS messages.

Flash SMS is a kind of message, which is defined in GSM specifications. These messages get displayed directly on to the screen, rather than automatically getting stored in Inbox. Once received, the user has an option either to save the message or simply dismiss it.

Apparently, the problem has been addressed with the platform update to Android 4.4.2 KitKat, whose rollout has taken off in recent days.

In the changelog of version 4.4.1 (KOT49E) to 4.4.2 (KOT49H) we read, “Android denial of service attack using class 0 SMS messages,” and “Fix OOBE crash/DoS after receiving 0-byte WAP push.” i.e. the resolution of the glitch that allowed you to block or cause a reboot of the devices by sending some dozens of messages in rapid succession.

Google seems to have acted swiftly to eliminate the bug. Android 4.4.2 KitKat is currently already available for all Nexus smartphones. For those who haven’t received the update yet, we recommend to use Class0Firewall app, available for free on the Play Store, whose task is precisely to prevent them from being carried out such kind of attacks.

Moreover, the official changelog also speaks of improvements to the camera of Nexus 5, in particular regarding the focus, the shutter lag, blur, white balance and fidelity of the colors shown in the images taken.